Latest CVE Feed
-
10.0
HIGHCVE-2019-2294
Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdr... Read more
Affected Products : sd_8cx_firmware sdm660_firmware msm8996au_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware qcs605_firmware sd_675_firmware +84 more products- EPSS Score: %0.33
- Published: Sep. 30, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-7868
A remote code execution vulnerability exists in helpUS(remote administration tool) due to improper validation of parameter of ShellExecutionExA function used for login.... Read more
- EPSS Score: %2.33
- Published: Jun. 29, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2012-5197
Multiple unspecified vulnerabilities in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 have unknown impact and attack vectors related to "error checking of system calls."... Read more
Affected Products : condor- EPSS Score: %0.72
- Published: Sep. 28, 2012
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2015-3829
Off-by-one error in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow and memory corruption) via ... Read more
Affected Products : android- EPSS Score: %25.10
- Published: Oct. 01, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2018-7124
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.... Read more
Affected Products : intelligent_management_center- EPSS Score: %20.37
- Published: Jun. 05, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-3824
The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not properly restrict size addition, which allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow... Read more
Affected Products : android- EPSS Score: %12.23
- Published: Oct. 01, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2008-0029
Cisco Application Velocity System (AVS) before 5.1.0 is installed with default passwords for some system accounts, which allows remote attackers to gain privileges.... Read more
- EPSS Score: %0.93
- Published: Jan. 23, 2008
- Modified: Apr. 09, 2025
-
10.0
HIGHCVE-2019-10557
Out-of-bound read in the wireless driver in the Linux kernel due to lack of check of buffer length. in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &... Read more
Affected Products : qca6574au_firmware sdx55_firmware sdm660_firmware msm8996au_firmware apq8096au_firmware qca6174a_firmware qca9377_firmware qcs605_firmware apq8009_firmware mdm9650_firmware +36 more products- EPSS Score: %0.33
- Published: Dec. 18, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2013-4813
The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote attackers to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745.... Read more
- EPSS Score: %6.40
- Published: Sep. 16, 2013
- Modified: Apr. 22, 2025
-
10.0
HIGHCVE-2019-10594
Stack overflow can occur when SDP is received with multiple payload types in the FMTP attribute of a video M line in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voi... Read more
Affected Products : sdx55_firmware sdm660_firmware sm8150_firmware msm8996au_firmware apq8096au_firmware mdm9150_firmware qcs605_firmware sdx24_firmware apq8009_firmware mdm9650_firmware +98 more products- EPSS Score: %0.36
- Published: Mar. 05, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-21505
Dell EMC Integrated System for Microsoft Azure Stack Hub, versions 1906 – 2011, contain an undocumented default iDRAC account. A remote unauthenticated attacker, with the knowledge of the default credentials, could potentially exploit this to log in to th... Read more
- EPSS Score: %5.75
- Published: May. 06, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-39720
Product: AndroidVersions: Android kernelAndroid ID: A-207433926References: N/A... Read more
Affected Products : android- EPSS Score: %0.13
- Published: Mar. 16, 2022
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2017-13177
In several functions of libhevc, NEON registers are not preserved. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions... Read more
Affected Products : android- EPSS Score: %10.05
- Published: Jan. 12, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2013-5019
Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.... Read more
Affected Products : ultra_mini_httpd- EPSS Score: %82.69
- Published: Jul. 31, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2013-5022
Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary fil... Read more
- EPSS Score: %1.40
- Published: Aug. 06, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2020-6969
It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versions prior to 6.53 and manipulate system configurations.... Read more
- EPSS Score: %0.45
- Published: Feb. 05, 2020
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2020-6963
In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilized hard coded SMB credentials, ... Read more
Affected Products : apexpro_telemetry_server_firmware carescape_central_station_mai700_firmware carescape_central_station_mas700_firmware clinical_information_center_mp100d_firmware clinical_information_center_mp100r_firmware carescape_telemetry_server_mp100r_firmware apexpro_telemetry_server carescape_central_station_mai700 carescape_central_station_mas700 clinical_information_center_mp100d +2 more products- EPSS Score: %0.21
- Published: Jan. 24, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-10892
An issue was discovered in D-Link DIR-806 devices. There is a stack-based buffer overflow in function hnap_main at /htdocs/cgibin. The function will call sprintf without checking the length of strings in parameters given by HTTP header and can be controll... Read more
- EPSS Score: %0.86
- Published: Sep. 06, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2011-0647
The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x allows remote attackers to execute arbitrary commands via the RunProgram function to TCP port 6542.... Read more
- EPSS Score: %72.63
- Published: Feb. 10, 2011
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2007-4915
The Intersil isl3893 extensions for Boa 0.93.15, as used on the FreeLan RO80211G-AP and other devices, do not prevent stack writes from entering memory locations used for string constants, which allows remote attackers to change the admin password stored ... Read more
- EPSS Score: %78.62
- Published: Sep. 17, 2007
- Modified: Apr. 09, 2025